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US -CL- CURRENT: 713/201 
ABSTRACT : 

A process of checking the authorization and authenticity of an application 
provided by a user includes authenticating an application authentication file 
against a domain administrator's public membership key. An application 
executable is then hashed, and the application hash result is compared to an 
authentication hash contained in the application authentication file. At this 
point, services are denied to the application if the application hash and the 
authentication hash do not match. Configuration assignments in the application 
authentication file are decoded if the application hash and the authentication 
hash match. The decoded configuration assignments are compared to the user's 
configuration assignments. Services are provided to the application if the 
result of the decode is favorable. Services are denied to the application if 
the result of the decode is not favorable. 
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Detail Description Paragraph - DETX (237) : 

[0282] It is only necessary to distribute public membership keys to the 
administrator one level up in the distribution hierarchy. The membership key 
is of no use to any other administrator or member. Therefore, to maintain 
scalability, system designs incorporating a central directory or repository for 
public membership keys preferably should be avoided, but may be used with the 
system of the invention. 



Detail Description Paragraph - DETX (4 92) : 

[0537] Each member's profile is distributed as an encrypted and signed 
object to ensure that only that member receives what was assigned. A digital 
signature (membership key pair) is used as the signing mechanism. There is 
little burden on the network bandwidth with the distribution of profiles since 
they are only distributed with the establishment of a new member, the 
revocation of a member, or periodic updates of key values. The architecture is 
PC- or client-based and does not rely on server interaction for normal 
operations. The invention may be applied to a client- server design if the 
supporting information infrastructure dictates. 
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ABSTRACT : 

The present invention provides an improved technique for accessing information 
in a peer-to-peer network. According to specific embodiments of the present 
invention, each file accessible in the peer-to-peer network is assigned a 
respective hash ID or fingerprint ID which is used to describe the contents of 
that file. Files in the peer-to-peer network may be identified and/or accessed 
based upon their associated hash ID values. In this way it is possible to 
identify identical files stored in the peer-to-peer network which have 
different file names and/or other metadata descriptors. Since the content of 
all files having the same hash ID will be identical, an automated process may 
be used to retrieve the desired content from one or more of the identified 
files . 
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Brief Description of Drawings Paragraph - DRTX (7) : 

[0015] FIGS. 4B and 4C illustrates flow diagrams of the directory 
synchronization process between a local peer directory and a central directory 
in accordance with a specific embodiment of the present invention. 



Detail Description Paragraph - DETX (17) : 

[0041] To determine what files are available and where they may be available 
in the central directory 112 so that they can readily be searched by any peer 
102a-102n, a directory synchronization process is necessary. Applying this 
technique, it may be the responsibility of each peer 102a- 102n in the network 
100 to send their list of files they have available, at least periodically, 
along with any changes to that list as they occur, to the central directory 
112 . 



Detail Description Paragraph - DETX (18) : 

[0042] Referring now to one specific implementation, FIG. 4B shows the 
directory synchronization process between the local peer directory 450 and the 
central directory 112 commencing at operation 400. Initially at operation 402, 
the selected local files to be made available for file sharing are identified. 
The HASH code of each file to be shared (if it has not already been done 
previously or if a file has changed for any reason) is computed in operation 
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403. Once the HASH code for each new or changed file has been computed, the 
entire local directory 450, or alternatively only changes and additions to the 
local directory, are transmitted to the central server 110 in operation 404 via 
the internet 104. The central server 110 then proceeds to synchronize each 
individual file with the central directory 112. The first central directory 
operation 405 checks to see if a file with that particular HASH ID already 
exists in the file directory 310 of data directory structure 300 (FIG. 3A) . If 
it doesn't, operation 406 is performed to add the new file to the central 
directory 112. In either case, the system now proceeds to operation 407, which 
is to check to see if a record exists in the elements table 320 for this 
particular file and user combination. If it does not, operation 408 is 
performed to add the filename, meta data, and peer ID to the elements table. 
If an element already existed for that user ID and file ID in the elements 
table 320, that record is checked for any required changes and updated as 
necessary. In any event, the new data coming from the peer 102a-102n takes 
precedence over corresponding existing data in the central directory 112. 
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ABSTRACT : 



An integrated directory services system is provided for synchr oni z ing 
records in a central directory server with records in a telephony system. The 
inventive system comprises a data storage table for storing directory import 
and export records, arid a process which communicates with the directory server 
via Lightweight Directory Access Protocol (LDAP) for (i) importing the 
directory import records from the directory server and writing the directory 
import records to the data storage table, (ii) reading successive ones of the 
directory import records from the data storage table and translating the 
directory import records to the telephony system, whereupon records in the 
telephony system are synchronized with the directory import records, (iii) 
reading successive records from the telephony system and in response writing 
the directory export records to the data storage table, and (iv) reading the 
directory export records from the data storage table and exporting the 
directory export records to the directory server, whereupon the records in the 
directory server are synchronized with the directory export records. 



16 Claims, 21 Drawing figures 
Exemplary Claim Number: 1 
Number of Drawing Sheets: 15 
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Abstract Text - ABTX (1) : 

An integrated directory services system is provided for synchroni z ing 
records in a central directory server with records in a telephony system. The 
inventive system comprises a data storage table for storing directory import 
and export records, and a process which communicates with the directory server 
via Lightweight Directory Access Protocol (LDAP) for (i) importing the 
directory import records from the directory server and writing the directory 
import records to the data storage table, (ii) reading successive ones of the 
directory import records from the data storage table and translating the 
directory import records to the telephony system, whereupon records in the 
telephony system are synchronized with the directory import records, (iii) 
reading successive records from the telephony system and in response writing 
the directory export records to the data storage table, and (iv) reading the 
directory export records from the data storage table and exporting the 
directory export records to the directory server, whereupon the records in the 
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directory server are synchronized with the directory export records. 



Brief Summary Text - BSTX (2) : 

This invention relates to voice and 
particularly to a method and apparatus 
server (DS) with a telephony system. 



data communication systems, and more 
for synchronizing a central directory 



Brief Summary Text - BSTX (6) : 

According to the present invention, an Integrated Directory Services system 
(IDS) is provided for synchronizing data in a central Directory Server (DS) , 
such as Microsoft Exchange . RTM . or Lotus Notes. RTM. , with a telephone 
directory of a PBX, either directly or via a dedicated server (referred to 
herein as OPS Manager) . Data synchronization is accomplished by importing and 
exporting additions, modifications and deletions of information between the DS 
and OPS Manager, as required, either incrementally or fully. 

Claims Text - CLTX (1) : 

1. An integrated directory services system for synchronizing records in a 
central directory server with records in a telephony system, comprising: 

Claims Text - CLTX (10) : 

8. An integrated directory services system for synchronizing records in a 
central directory server with records in a telephony system, comprising: 

Claims Text - CLTX (13) : 

9 . A method of synchroni z ing records in a central directory server with 
records in a telephony system, comprising the steps of: 

Claims Text - CLTX (16) : 

10. An integrated directory services system for synchroni z ing directory 
records of a central directory with a plurality of different directory 
databases, comprising 
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